MS Patch Tuesday to Fix Critical Flaws

Microsoft's next scheduled monthly patch update is Tuesday, June 13, and with it will come a number of security fixes for Windows as well as updates to other Microsoft products.

The update will feature nine Microsoft Security Bulletins affecting Microsoft Windows, at least one of which is critical. One patch will change how Internet Explorer handles ActiveX controls, the results of a lawsuit, not a security problem.

Microsoft issued a "compatibility patch" in April to give developers time to adjust to the new method of handling controls, but with this patch, that compatibility bridge will go away.

Microsoft will not provide details on the security flaw until the patch is released, which should give some indication of the severity of the flaw. Some of these patches will require a server restart.

There will also be one Security Bulletin affecting Microsoft Exchange with a maximum severity rating of "Important." Microsoft would only say it involves a functionality change discussed in Knowledge Base article 912918. Finally, there are two Security Bulletins involving Microsoft Office, at least one of which is rated "Critical."

Also as part of the patch, Microsoft will release an updated version of the Microsoft Windows Malicious Software Removal Tool plus two non-security-related high priority update. All of these will be available through Windows Update, Microsoft Update, Windows Server Update Services and the Download Center.

Microsoft also said it will host a Webcast covering the new fixes on Wednesday, June 14 at 11 a.m. Pacific Time.